$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa File: 3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa (raw, json) Hash identifier: 2uRQnUZPR4fwatQbV55EBYnR1o09dhyf0Jfq90ZjfnQ= Subject key identifier: E0:83:2B:D9:B3:79:5A:73:6A:0D:F1:68:A2:6B:97:C3:6C:37:46:B6 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 5F38E7D219DACBB8803237A325DF3ED531F61C66 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa Signing time: Tue 28 Oct 2025 00:00:08 +0000 ROA not before: Tue 28 Oct 2025 00:00:08 +0000 ROA not after: Tue 02 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:38:e7:d2:19:da:cb:b8:80:32:37:a3:25:df:3e:d5:31:f6:1c:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Oct 28 00:00:08 2025 GMT Not After : Dec 2 23:59:59 2025 GMT Subject: serialNumber=246841dddcb02d25b323f56972264375ccd90a240bc53bb4f4e6a9b0abec2a55, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:84:78:f3:cf:60:e4:f8:5e:55:67:bd:3a:33: 5d:c3:36:ae:14:b1:ef:26:8e:69:bf:8e:26:be:95: a0:0b:68:b3:1a:ac:f2:72:60:c5:da:d2:40:6f:2b: f6:3c:db:26:98:f5:ba:e0:46:97:70:73:e1:7e:40: c1:34:07:c0:3c:b0:c1:3c:af:46:1e:84:4e:ba:40: a7:06:7b:26:26:f0:ae:a1:21:71:ad:23:6e:83:ee: b5:cf:27:83:28:4b:b4:72:ab:ec:5f:d3:9e:30:14: 6f:50:49:8b:36:a0:0e:11:d2:58:7e:a6:a4:a5:1e: f7:91:31:09:36:4a:cf:ca:30:f9:b8:48:43:fc:d8: e6:ba:f9:56:7f:1b:79:98:87:41:f8:fe:08:f9:ff: 36:27:80:fc:06:95:b4:79:d3:8a:ce:2a:9e:ac:67: 1d:f2:9b:e7:03:61:51:68:b9:85:24:e1:79:ac:85: 46:dd:ba:bb:67:ea:4c:8d:af:36:9c:4a:a3:16:75: e2:21:e5:55:a3:97:4e:76:94:58:12:e3:a7:b1:3f: 80:4f:f8:df:17:8c:6a:7a:86:c1:ae:e4:43:da:07: ca:55:d4:4e:ba:c5:fb:61:21:71:59:32:85:bc:1a: 41:61:9f:38:e4:71:ca:56:62:f6:07:8c:a9:57:c2: c8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:83:2B:D9:B3:79:5A:73:6A:0D:F1:68:A2:6B:97:C3:6C:37:46:B6 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.168.0/21 Signature Algorithm: sha256WithRSAEncryption 11:0b:56:f9:9d:ba:3e:f3:4c:c6:57:3f:72:d4:aa:50:43:ce: 50:e4:b9:03:36:a5:51:61:91:ca:f0:46:3d:57:86:94:93:d2: 14:3e:0c:5e:77:ad:6b:a5:ad:cb:24:c8:ed:3a:5d:10:d4:d4: 13:d2:ff:22:88:b9:06:07:cc:15:89:86:d5:b0:41:f4:f0:3e: 1b:6e:e0:85:c0:e6:a5:11:b8:9e:cb:c9:4c:db:fd:64:a3:92: ef:56:9c:17:55:e7:1d:9f:6e:99:3d:7b:54:46:e4:b2:e8:eb: 75:80:97:2e:55:8d:2e:40:58:1c:0b:38:56:15:7f:f7:35:5c: 7e:d0:c4:4e:27:9d:d2:85:66:4b:ae:e6:54:00:b0:21:a0:18: 61:c0:7f:ea:01:63:df:1b:76:e1:d6:a9:f9:93:de:23:e0:68: 56:38:2a:bb:74:a4:db:17:bd:07:55:2b:b8:b2:d1:66:22:39: 1a:e3:1d:ba:93:31:15:5c:6b:68:48:2e:b2:35:2d:8e:a9:96: 32:a5:16:3d:56:cb:da:89:2c:92:e7:8a:76:8e:a0:bc:42:dd: 1a:f1:7c:d7:30:ba:91:a4:2e:8c:bd:85:e4:1c:3b:73:62:b0: 78:d0:fc:6d:8b:55:db:d3:ea:ac:7d:95:7a:6d:58:2c:55:ce: 3f:f0:9e:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXzjn0hnay7iAMjejJd8+1TH2HGYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMDI4MDAwMDA4WhcNMjUxMjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDY4NDFkZGRjYjAyZDI1YjMyM2Y1Njk3MjI2NDM3NWNj ZDkwYTI0MGJjNTNiYjRmNGU2YTliMGFiZWMyYTU1MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCohHjzz2Dk+F5VZ706M13DNq4Use8mjmm/jia+laALaLMa rPJyYMXa0kBvK/Y82yaY9brgRpdwc+F+QME0B8A8sME8r0YehE66QKcGeyYm8K6h IXGtI26D7rXPJ4MoS7Ryq+xf054wFG9QSYs2oA4R0lh+pqSlHveRMQk2Ss/KMPm4 SEP82Oa6+VZ/G3mYh0H4/gj5/zYngPwGlbR504rOKp6sZx3ym+cDYVFouYUk4Xms hUbdurtn6kyNrzacSqMWdeIh5VWjl052lFgS46exP4BP+N8XjGp6hsGu5EPaB8pV 1E66xfthIXFZMoW8GkFhnzjkccpWYvYHjKlXwsihAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4IMr2bN5WnNqDfFoomuXw2w3RrYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNlMGRhY2UzLTBlMmEtNDI1Mi04YzkyLTRjN2VlYzRjMzU4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY3agwDQYJKoZIhvcNAQELBQADggEBABELVvmduj7zTMZXP3LUqlBDzlDk uQM2pVFhkcrwRj1XhpST0hQ+DF53rWulrcskyO06XRDU1BPS/yKIuQYHzBWJhtWw QfTwPhtu4IXA5qURuJ7LyUzb/WSjku9WnBdV5x2fbpk9e1RG5LLo63WAly5VjS5A WBwLOFYVf/c1XH7QxE4nndKFZkuu5lQAsCGgGGHAf+oBY98bduHWqfmT3iPgaFY4 Krt0pNsXvQdVK7iy0WYiORrjHbqTMRVca2hILrI1LY6pljKlFj1Wy9qJLJLninaO oLxC3RrxfNcwupGkLoy9heQcO3NisHjQ/G2LVdvT6qx9lXptWCxVzj/wnmA= -----END CERTIFICATE-----Generated at Wed Nov 5 08:01:29 2025 by rpki-client